gatekeeper

Patched

Policy & Compliance from mirror.gcr.io/openpolicyagent/gatekeeper

Pull Reference

ghcr.io/verity-org/openpolicyagent/gatekeeper

docker pull ghcr.io/verity-org/openpolicyagent/gatekeeper

Available Versions

v3.22.2 latest 7 CVEs fixed

v3.22.1 7 CVEs fixed

v3.22.0 19 CVEs fixed

Copa-Patched Image

Patched in-place from the upstream image using Copa . OS-level vulnerabilities are fixed without rebuilding \u2014 same layers, same behavior, fewer CVEs.

Supply Chain

Full compliance details

Signed SLSA L3 SBOM Rekor

Verify this artifact

Cosign signature

cosign verify \
  --certificate-identity-regexp "https://github.com/verity-org/verity/.github/workflows/" \
  --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \
  ghcr.io/verity-org/openpolicyagent/gatekeeper:v3.22.2

Build provenance

gh attestation verify \
  oci://ghcr.io/verity-org/openpolicyagent/gatekeeper:v3.22.2 \
  --owner verity-org

Vulnerability Scan

Found 7 vulnerabilit ies in the original image. 7 fixed by Copa.

4HIGH3MEDIUM

Source

Copa (in-place patch)

Platforms

linux/amd64, linux/arm64

Registry

ghcr.io/verity-org

Upstream

mirror.gcr.io/openpolicyagent/gatekeeper

Version

v3.22.2